Koozali.org: home of the SME Server

Obsolete Releases => SME Server 8.x => Topic started by: ghorst352 on December 10, 2014, 01:26:04 PM

Title: US-CERT (TA14-290A) - Additional Vulnerabilities now with TLS
Post by: ghorst352 on December 10, 2014, 01:26:04 PM

https://www.us-cert.gov/ncas/current-activity/2014/12/09/Certain-TLS-Implementations-Vulnerable-POODLE-Attacks

Title: Re: US-CERT (TA14-290A) - Additional Vulnerabilities now with TLS
Post by: guest22 on December 10, 2014, 01:34:09 PM

Thanks for the pointer.

Please do not respond to this thread to avoid well intended 'fixes', 'workarounds' and other 'tips'.

Instead, all (possible) security issues should be logged in our bugzilla under the SME Server version, security section.
 

Title: Re: US-CERT (TA14-290A) - Additional Vulnerabilities now with TLS
Post by: Stefano on December 10, 2014, 02:34:33 PM

I agree, locking the topic

@all: bugzilla is the (only) right place, thank you